Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
File: 1K5pV43Ol3ozqindV8oZD6aHd_o.mft (raw, json)
Hash identifier: W41ZeptSf9syiQ8fDgqfcKu6CJCyvPP4pdrHHAiyyrE=
Subject key identifier: D3:48:E7:9E:2A:54:50:DE:17:FC:7C:E8:9C:82:56:06:26:09:0D:DC
Authority key identifier: D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
Certificate issuer: /CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Certificate serial: 019D270478898B4D5F1C48576ADADFFE8EDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
Manifest number: 0EFC
Signing time: Wed 25 Mar 2026 22:01:37 +0000
Manifest this update: Wed 25 Mar 2026 22:01:37 +0000
Manifest next update: Thu 26 Mar 2026 22:01:37 +0000
Files and hashes: 1: 1K5pV43Ol3ozqindV8oZD6aHd_o.crl (hash: TiU0nNEfe15ian73nid70dxeZlWSotFOt2Strg4Tb0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:78:89:8b:4d:5f:1c:48:57:6a:da:df:fe:8e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Validity
Not Before: Mar 25 22:01:37 2026 GMT
Not After : Mar 26 22:01:37 2026 GMT
Subject: CN=d348e79e2a5450de17fc7ce89c82560626090ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:36:03:89:1d:ef:1a:a5:cd:c2:8c:3a:0b:
6c:54:e7:2b:8a:61:52:db:94:ce:a9:bb:16:51:0b:
46:05:0e:26:84:11:9c:e5:ae:55:10:a5:8c:48:3d:
0e:df:a7:1b:7c:57:c5:78:1a:1e:03:38:d4:a0:76:
e6:f0:4f:6f:a3:56:45:11:b7:88:6c:9e:f3:70:99:
14:56:e3:04:3c:6e:b1:e4:79:a9:c4:5e:13:bd:68:
98:e9:a2:2b:3d:3b:c9:76:b3:b8:be:7b:76:ff:67:
4a:78:5d:99:7b:1e:08:4c:26:cf:52:d7:3f:4a:10:
d8:3e:2a:c2:bc:4e:80:8b:f6:f6:94:c6:dc:1c:58:
06:d5:93:02:4f:01:08:30:9b:50:fe:f5:28:ad:d6:
f5:4b:7f:cb:29:49:79:63:03:19:87:e0:2a:17:77:
06:1f:2a:3f:5f:fa:ff:43:be:de:b1:94:19:b2:22:
18:8b:1b:0b:42:9e:ba:3b:fa:84:04:74:e8:dd:1a:
29:b0:dc:a3:c1:31:16:a9:cd:f5:09:d3:56:fb:db:
ca:6d:ee:32:ab:7f:df:b8:28:00:38:1c:f1:01:46:
43:b8:99:2a:58:c2:a4:9c:ac:0f:7c:d9:7c:0c:24:
15:3c:ec:a1:c6:57:e0:9a:08:4d:b5:56:07:47:c1:
2a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:48:E7:9E:2A:54:50:DE:17:FC:7C:E8:9C:82:56:06:26:09:0D:DC
X509v3 Authority Key Identifier:
keyid:D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:68:4e:4e:5d:1d:f9:83:f9:a7:1c:9f:8d:b6:54:9d:00:1e:
3f:88:ac:6f:43:e9:9c:6b:60:7e:3b:84:b4:39:df:93:67:a7:
d1:32:95:14:e7:77:88:d6:0e:3b:ff:95:af:aa:fb:7b:55:ba:
0f:e8:de:ec:49:02:43:b1:ff:c2:4d:c4:2b:e8:1b:9c:6d:70:
e9:58:d7:a5:ac:22:6b:a1:80:e0:1f:fe:c9:c9:1c:9f:11:1c:
37:49:20:81:21:09:6a:26:34:ae:f7:56:2e:d9:ab:69:68:d1:
3a:77:26:06:44:88:5e:4f:b2:85:48:f2:57:63:4f:0b:42:da:
ae:a9:95:cb:2f:f8:d8:eb:82:15:7c:22:2b:b3:50:6b:ca:e3:
e5:25:20:0c:db:4c:08:49:a5:86:1f:d7:89:2e:00:cf:be:aa:
81:89:03:f7:c5:c2:d5:01:2f:11:eb:83:ae:56:34:4e:75:34:
d7:65:1d:ed:99:3d:69:5b:43:c1:2e:d2:ad:4b:98:aa:75:02:
b3:cf:b2:51:e7:b3:a7:82:15:5e:3b:c3:14:dc:bc:b5:b5:49:
05:43:d2:81:9d:04:2c:f1:54:1f:ea:ca:6d:82:22:79:bc:39:
80:c9:da:26:57:60:ca:83:c2:bc:c2:6a:7c:31:54:00:6a:ad:
61:84:aa:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:08:11 2026 by rpki-client